• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-352

CVE-2018-15884

February 26, 2023 by

RICOH MP C4504ex devices allow HTML Injection via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.

CVE-2018-15901

February 26, 2023 by

e107 2.1.8 has CSRF in ‘usersettings.php’ with an impact of changing details such as passwords of users including administrators.

CVE-2018-15844

February 26, 2023 by

An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account’s password via /admin.php?s=/Admin/doedit.

CVE-2018-15845

February 26, 2023 by

There is a CSRF vulnerability that can add an administrator account in Gleez CMS 1.2.0 via admin/users/add.

CVE-2018-15846

February 26, 2023 by

An issue was discovered in fledrCMS through 2014-02-03. There is a CSRF vulnerability that can change the administrator’s password via index.php?p=done&savedata=1.

CVE-2018-15848

February 26, 2023 by

An issue was discovered in portfolioCMS 1.0.5. There is CSRF to create new pages via admin/portfolio.php?newpage=true.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 65
  • Go to page 66
  • Go to page 67
  • Go to page 68
  • Go to page 69
  • Interim pages omitted …
  • Go to page 424
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE